CS0-003 Vulnerability Management • Complete Question Bank
Complete CS0-003 Vulnerability Management question bank — all 0 questions with answers and detailed explanations.
Drag steps to the numbered slots on the right, or tap a step then tap a slot.
Drag steps to the numbered slots on the right, or tap a step then tap a slot.
Drag steps to the numbered slots on the right, or tap a step then tap a slot.
Drag a concept onto its matching description — or click a concept then click the description.
Windows Event Log (Security)
Linux/Unix system messages
Web server (e.g., Apache, IIS)
Database or application activity
Network firewall traffic records
Drag a concept onto its matching description — or click a concept then click the description.
Deceptive email to steal credentials
Malware that encrypts data for ransom
Overwhelming a service with traffic
Injecting malicious SQL queries
Intercepting communication between parties
Drag a concept onto its matching description — or click a concept then click the description.
Matches known patterns
Identifies deviations from baseline
Uses rules to detect suspicious behavior
Monitors actions over time
Applies mathematical models
A security analyst is prioritizing vulnerabilities for remediation. The following vulnerabilities have been identified:
Vulnerability A: CVSS v3.1 Base Score 9.8 (Critical), no known exploit, affects internet-facing web server. Vulnerability B: CVSS v3.1 Base Score 7.5 (High), exploit available, affects internal database server. Vulnerability C: CVSS v3.1 Base Score 6.1 (Medium), exploit available, affects internal file server. Vulnerability D: CVSS v3.1 Base Score 4.0 (Medium), no known exploit, affects internal workstation.
Which vulnerability should be remediated FIRST?
Refer to the exhibit. Port State Service 22/tcp open ssh 80/tcp open http 443/tcp open https 3389/tcp filtered ms-wbt-server
Refer to the exhibit. [alert] (1:1000001) Critical vulnerability: CVE-2024-1234 Severity: High CVSS: 8.5 Affected: web01.example.com (port 443) Solution: Upgrade to version 2.3.4
Refer to the exhibit.
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Principal": "*",
"Action": "s3:GetObject",
"Resource": "arn:aws:s3:::company-data/*"
}
]
}Refer to the exhibit. Nmap scan report for 10.10.10.15 Host is up (0.0012s latency). Not shown: 995 closed ports PORT STATE SERVICE VERSION 22/tcp open ssh OpenSSH 7.4 (protocol 2.0) 80/tcp open http Apache httpd 2.4.6 ((CentOS) OpenSSL/1.0.2k-fips) 443/tcp open ssl/http Apache httpd 2.4.6 ((CentOS) OpenSSL/1.0.2k-fips) 3306/tcp open mysql MySQL 5.5.62 8080/tcp open http-proxy Squid http proxy 3.5.20 Service Info: OS: Linux